Vulnerability Details : CVE-2016-1335
The SSH implementation in Cisco StarOS before 19.3.M0.62771 and 20.x before 20.0.M0.62768 on ASR 5000 devices mishandles a multi-user public-key authentication configuration, which allows remote authenticated users to gain privileges by establishing a connection from an endpoint that was previously used for an administrator's connection, aka Bug ID CSCux22492.
Exploit prediction scoring system (EPSS) score for CVE-2016-1335
Probability of exploitation activity in the next 30 days: 0.13%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 46 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2016-1335
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.1
|
HIGH | AV:N/AC:H/Au:S/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
|
7.5
|
HIGH | CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.6
|
5.9
|
NIST |
CWE ids for CVE-2016-1335
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-1335
-
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160218-asr
Cisco ASR 5000 Series StarOS SSH Subsystem Privilege Escalation VulnerabilityVendor Advisory
-
http://www.securitytracker.com/id/1035062
Cisco ASR 5000 Router StarOS Lets Remote Authenticated Users Gain Elevated Privileges - SecurityTrackerThird Party Advisory;VDB Entry
Products affected by CVE-2016-1335
- cpe:2.3:a:cisco:asr_5000_series_software:20.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:16.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:19.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:19.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:18.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:17.7.0:*:*:*:*:*:*:*